| Title |
Kayako SupportSuite Multiple Input Validation Vulnerabilities |
| Published |
2008-08-11-12:00AM |
| Updated |
2008-08-26-06:45PM |
| Class |
Input Validation Error |
| CVE |
|
| Remote |
Yes |
| Local |
No |
| Credit |
James Bercegay of the GulfTech Security Research Team |
| Vulnerable |
Kayako SupportSuite 3.30 Release Candidate 2 Kayako SupportSuite 3.4.10 Kayako SupportSuite 3.0.32 Kayako SupportSuite 3.0.13 Kayako SupportSuite 3.0 0.26
|
| Not Vulnerable |
Kayako SupportSuite 3.30 Release Candidate 3
|
| Code |
An attacker can exploit these issues via a browser. To exploit a cross-site scripting issue, the attacker entices an unsuspecting victim to follow a malicious URI.The following proof-of-concept URIs are available: /data/vulnerabilities/exploits/30642.html |
| TXT |
 |